Public Key Encryption Last Updated : 23 May, 2025 Comments Improve Suggest changes Like Article Like Report Public key cryptography provides a secure way to exchange information and authenticate users by using pairs of keys. The public key is used for encryption and signature verification, while the private key is used for decryption and signing. When the two parties communicate with each other to transfer the intelligible or sensible message, referred to as plaintext, is converted into apparently random unreadable for security purposes referred to as ciphertext. Public Key CryptographyPublic key cryptography is a method of secure communication that uses a pair of keys, a public key, which anyone can use to encrypt messages or verify signatures, and a private key, which is kept secret and used to decrypt messages or sign documents. This system ensures that only the intended recipient can read an encrypted message and that a signed message truly comes from the claimed sender. Public key cryptography is essential for secure internet communications, allowing for confidential messaging, authentication of identities, and verification of data integrity.Cryptographic KeyA cryptographic key is a piece of information used by cryptographic algorithms to encrypt or decrypt data, authenticate identities, or generate digital signatures. It serves as a parameter to control cryptographic operations, ensuring the security and privacy of digital communications and transactions.How Does TLS/SSL Use Public Key CryptographyTLS/SSL uses public key cryptography to keep our internet connections secure. It does this in two main ways:Encryption: When you visit a secure website (HTTPS), TLS/SSL helps encrypt data exchanged between your browser and the website's server. It uses a combination of public and private keys to create a secure connection. Your browser and the server agree on a secret key for this session, which keeps your data safe from eavesdroppers.Authentication: TLS/SSL verifies the identity of websites. When you connect to a site, it presents a digital certificate signed by a trusted authority. Your browser checks this certificate to ensure you're really connecting to the right site and not a fake one trying to steal your information.By using public key cryptography, TLS/SSL protects our privacy online and ensures that the websites we visit are genuine and trustworthy.Components of Public Key EncryptionPlain Text: This is the message which is readable or understandable. This message is given to the Encryption algorithm as an input.Cipher Text: The cipher text is produced as an output of Encryption algorithm. We cannot simply understand this message.Encryption Algorithm: The encryption algorithm is used to convert plain text into cipher text.Decryption Algorithm: It accepts the cipher text as input and the matching key (Private Key or Public key) and produces the original plain text.Public and Private Key: One key either Private key (Secret key) or Public Key (known to everyone) is used for encryption and other is used for decryption.Public Key Encryption WorkingKey Pair Generation : A user generates a pair of keys :Public Key: Shared openly. Anyone can use it to send an encrypted message.Private Key: Kept secret. Only the key owner can decrypt messages encrypted with the public key.Encryption : If someone wants to send a private message:They obtain the recipient’s public key.They encrypt the message using that public key.The encrypted message is sent over a network.Decryption : Upon receiving the message:The recipient uses their private key to decrypt the message and recover the original plaintextPublic Key EncryptionPublic Key Encryption Practical Example: Secure Website (HTTPS)When you visit a secure website like https://www.bank.com, public key encryption is used behind the scenes to encrypt data between your browser and the bank's server.Bank's Server Has a Key PairPrivate Key: Secret, stored securely on the server.Public Key: Shared with anyone via an SSL certificate.You Connect to the WebsiteYour browser gets the bank’s public key from its SSL certificate.It verifies the certificate is valid (issued by a trusted certificate authority).Encrypting the Session KeyYour browser creates a random symmetric key (used for actual data encryption).It encrypts this key using the bank's public key.Only the bank can decrypt it using its private key.Secure Communication BeginsNow both your browser and the bank share a secret symmetric key.All further communication (login info, account data, etc.) is encrypted using this key.Why Public Key Encryption is UsedIt ensures that only the server (with the private key) can read the symmetric key.Even if someone intercepts the traffic, they can’t decrypt the session key or data.Characteristics of Public Encryption keySecurity Assurance: It is computationally infeasible to determine the private (decryption) key from the public (encryption) key and algorithm alone.Key Pair Flexibility:Either key (public or private) can be used for encryption, with the other used for decryption supporting both confidentiality and authentication.Easy Public Key Distribution: Public keys can be shared freely, enabling convenient encryption and digital signature verification.Private Key Confidentiality:Private keys are kept secret, ensuring that only the key owner can decrypt content or create valid digital signatures.Foundation of RSA:The most widely used public-key cryptosystem, RSA, is based on the difficulty of factoring large composite numbers into primes.Limitations of the Public Key EncryptionSusceptible to Brute-Force Attacks: Although computationally hard, public key encryption algorithms can be theoretically brute forced if key lengths are too short or computational power advances (e.g., quantum computing).Private Key Loss: If a user loses their private key, they can no longer decrypt data or prove their identity, making the system non-recoverable and highly vulnerable.Man-in-the-Middle (MitM) Attack Risk: A third party could intercept and alter public keys during transmission, leading to unauthorized decryption or spoofed signatures if keys aren't verified through a trusted channel.PKI Chain of Trust Vulnerability: If a private key higher in the PKI hierarchy (e.g., a root certificate authority) is compromised, it can invalidate all subordinate certificates, enabling widespread MitM attacks.Applications of the Public Key EncryptionSSL/TLS protocols : They use public key encryption to securely exchange symmetric session keys between a web browser and a server.Digital signature: Digital signature is for senders authentication purpose. In this sender encrypt the plain text using his own private key. This step will make sure the authentication of the sender because receiver can decrypt the cipher text using senders public key only.Key exchange: This algorithm can use in both Key-management and securely transmission of data.SSH keys : For secure login to remote servers use public/private key pairs for authentication.Blockchain and Cryptocurrencies: Users control wallets with private keys , public keys serve as wallet addresses. Comment More infoAdvertise with us Next Article Traditional Symmetric Ciphers S SakshiBhakhra Follow Improve Article Tags : Computer Networks GATE CS Similar Reads Cryptography Tutorial Cryptography is a technique of securing communication by converting plain text into unintelligible ciphertext. It involves various algorithms and protocols to ensure data confidentiality, integrity, authentication, and non-repudiation. The two primary types of cryptography are symmetric key cryptogr 7 min read Cryptography BasicCryptography IntroductionCryptography is the study and practice of techniques for secure communication in the presence of third parties called adversaries. It deals with developing and analyzing protocols that prevents malicious third parties from retrieving information being shared between two entities thereby following th 4 min read History of CryptographyHumans have two basic needs when we take about communication. One is the need to communicate selectively, to communicate and share information. These two basic needs while communicating gave rise to coding and encrypting the messages in such a way that only intended people could have access to the i 4 min read Cryptography and its TypesCryptography is a technique of securing information and communications using codes to ensure confidentiality, integrity and authentication. Thus, preventing unauthorized access to information. The prefix "crypt" means "hidden" and the suffix "graphy" means "writing". In Cryptography, the techniques 8 min read Cryptography and Network Security PrinciplesIn the present-day scenario security of the system is the sole priority of any organization. The main aim of any organization is to protect their data from attackers. In cryptography, attacks are of two types: Passive attacks and Active attacks. Passive attacks are those that retrieve information fr 9 min read Cryptography AlgorithmPublic Key EncryptionPublic key cryptography provides a secure way to exchange information and authenticate users by using pairs of keys. The public key is used for encryption and signature verification, while the private key is used for decryption and signing. When the two parties communicate with each other to transfe 7 min read Traditional Symmetric CiphersThe two types of traditional symmetric ciphers are Substitution Cipher and Transposition Cipher. The following flowchart categories the traditional ciphers: 1. Substitution Cipher: Substitution Ciphers are further divided into Mono-alphabetic Cipher and Poly-alphabetic Cipher. First, let's study abo 3 min read What is an Asymmetric Encryption?Asymmetric encryption, also known as public-key cryptography, is a type of encryption that uses a pair of keys to encrypt and decrypt data. The pair of keys includes a public key, which can be shared with anyone, and a private key, which is kept secret by the owner. What is an Asymmetric Encryption? 8 min read Difference between Private key and Public keyCryptography as a field emphasizes the need to guarantee secure communication and data privacy. There are mainly two approaches available to perform this operation: – Private Key Cryptography (RIC or Symmetric Key Cryptography) and Public Key Cryptography (PKE or Asymmetric Key Cryptography). Althou 6 min read What is data encryption?What is Data Encryption?Data encryption is the process of converting readable information (plaintext) into an unreadable format (ciphertext) to protect it from unauthorized access. It is a method of preserving data confidentiality by transforming it into ciphertext, which can only be decoded using a unique decryption key p 10 min read Encryption, Its Algorithms And Its FutureEncryption plays a vital role in today’s digital world, serving a major role in modern cyber security. It involves converting plain text into cipher text, ensuring that sensitive information remains secure from unauthorized access. By making data unreadable to unauthorized parties, encryption helps 10 min read SHA-1 HashSHA-1 or Secure Hash Algorithm 1 is a cryptographic algorithm that takes an input and produces a 160-bit (20-byte) hash value. This hash value is known as a message digest. This message digest is usually then rendered as a hexadecimal number which is 40 digits long. It is a U.S. Federal Information 7 min read RC4 Encryption AlgorithmRC4 is a stream cipher and variable-length key algorithm. This algorithm encrypts one byte at a time (or larger units at a time). A key input is a pseudorandom bit generator that produces a stream 8-bit number that is unpredictable without knowledge of the input key, The output of the generator is c 6 min read Hash Functions in System SecurityHash Function is a function that has a huge role in making a System Secure as it converts normal data given to it as an irregular value of fixed length. We can imagine it to be a Shaker in our homes. When we put data into this function it outputs an irregular value. The Irregular value it outputs is 4 min read Blowfish Algorithm with ExamplesBlowfish is an encryption technique designed by Bruce Schneier in 1993 as an alternative to the DES Encryption Technique. It is significantly faster than DES and provides a good encryption rate with no effective cryptanalysis technique found to date. It is one of the first secure block ciphers not s 14 min read Difference between MD5 and SHA1MD5 stands for Message Digest and SHA1 stands for Secure Hash Algorithm both are cryptographic hash algorithms used for security purposes. SHA-1 or Secure Hash Algorithm 1 is a cryptographic algorithm that takes an input and produces a 160-bit (20-byte) hash value. This hash value is known as a mess 5 min read Difference between RSA algorithm and DSAIn cryptography, the two commonly used algorithms in modern cryptography for secure data transmission and to ensure the signatures of digital signatures, are the Rivest-Shamir-Adleman (RSA) algorithm and Digital Signature Algorithm (DSA). We'll learn about RSA and DSA, how they work when are they us 8 min read Classical Encryption TechniquesSymmetric Cipher ModelSymmetric Encryption is the most basic and old method of encryption. It uses only one key for the process of both the encryption and decryption of data. Thus, it is also known as Single-Key Encryption. A few basic terms in Cryptography are as follows: Plain Text: original message to be communicated 3 min read Substitution CipherHiding some data is known as encryption. When plain text is encrypted it becomes unreadable and is known as ciphertext. In a Substitution cipher, any character of plain text from the given fixed set of characters is substituted by some other character from the same set depending on a key. For exampl 6 min read Columnar Transposition CipherGiven a plain-text message and a numeric key, cipher/de-cipher the given text using Columnar Transposition Cipher The Columnar Transposition Cipher is a form of transposition cipher just like Rail Fence Cipher. Columnar Transposition involves writing the plaintext out in rows, and then reading the c 12 min read Block Cipher , DES and AESBlock Cipher Design PrinciplesBlock ciphers are built in the Feistel cipher structure. Block cipher has a specific number of rounds and keys for generating ciphertext.Block cipher is a type of encryption algorithm that processes fixed-size blocks of data, usually 64 or 128 bits, to produce ciphertext. The design of a block ciphe 3 min read Block Cipher modes of OperationEncryption algorithms are divided into two categories based on the input type: block cipher and stream cipher. A block cipher is an encryption algorithm that takes a fixed-size input (e.g., b bits) and produces a ciphertext of b bits. If the input is larger than b bits, it can be divided further. Th 8 min read Data Encryption Standard (DES) | Set 1Data Encryption Standard (DES) is a symmetric block cipher. By 'symmetric', we mean that the size of input text and output text (ciphertext) is same (64-bits). The 'block' here means that it takes group of bits together as input instead of encrypting the text bit by bit. Data encryption standard (DE 15+ min read Double DES and Triple DESAs we know the Data encryption standard (DES) uses 56 bit key to encrypt any plain text which can be easily be cracked by using modern technologies. To prevent this from happening double DES and triple DES were introduced which are much more secured than the original DES because it uses 112 and 168 2 min read Strength of Data encryption standard (DES)Data Encryption Standard (DES) is a symmetric block cipher. By ‘symmetric’, we mean that the size of input text and output text (ciphertext) is same (64-bits). The block here means that it takes group of bits together as input instead of encrypting the text bit by bit. Data encryption standard (DES) 5 min read AES Full FormAES stands for Advanced Encryption Standard and is a majorly used symmetric encryption algorithm. It is mainly used for encryption and protection of electronic data. It was used as the replacement of DES(Data encryption standard) as it is much faster and better than DES. AES consists of three block 2 min read Advanced Encryption Standard (AES)Advanced Encryption Standard (AES) is a highly trusted encryption algorithm used to secure data by converting it into an unreadable format without the proper key. It is developed by the National Institute of Standards and Technology (NIST) in 2001. It is is widely used today as it is much stronger t 7 min read Difference Between AES and DES CiphersDES (Data Encryption Standard) and AES (Advanced Encryption Standard) are both symmetric key encryption algorithms used to secure data. They use the same key for both encryption and decryption, but differ significantly in strength and design. Advanced Encryption Standard (AES) is a highly trusted en 5 min read Public Key Cryptography and RSARSA Algorithm in CryptographyRSA(Rivest-Shamir-Adleman) Algorithm is an asymmetric or public-key cryptography algorithm which means it works on two different keys: Public Key and Private Key. The Public Key is used for encryption and is known to everyone, while the Private Key is used for decryption and must be kept secret by t 13 min read Implementation of Diffie-Hellman AlgorithmDiffie-Hellman algorithm:The Diffie-Hellman algorithm is being used to establish a shared secret that can be used for secret communications while exchanging data over a public network using the elliptic curve to generate points and get the secret key using the parameters. For the sake of simplicity 10 min read ElGamal Encryption AlgorithmElGamal Encryption is a public-key cryptosystem. It uses asymmetric key encryption to communicate between two parties and encrypt the message. This cryptosystem is based on the difficulty of finding discrete logarithms in a cyclic group that is even if we know ga and gk, it is extremely difficult to 6 min read What is Cryptanalysis?Understanding Rainbow Table AttackWhat is a Rainbow Table? The passwords in a computer system are not stored directly as plain texts but are hashed using encryption. A hash function is a 1-way function, which means that it can't be decrypted. Whenever a user enters a password, it is converted into a hash value and is compared with t 4 min read What is a Dictionary Attack?A Dictionary Attack is an attack vector used by the attacker to break in a system, which is password protected, by putting technically every word in a dictionary as a form of password for that system. This attack vector is a form of Brute Force Attack. The dictionary can contain words from an Englis 2 min read Brute Force AttackA Brute force attack is a well known breaking technique, by certain records, brute force attacks represented five percent of affirmed security ruptures. A brute force attack includes 'speculating' username and passwords to increase unapproved access to a framework. Brute force is a straightforward a 3 min read Comman CryptographyCustom Building Cryptography Algorithms (Hybrid Cryptography)Cryptography can be defined as an art of encoding and decoding the patterns (in the form of messages). Cryptography is a very straightforward concept which deals with manipulating the strings (or text) to make them unreadable for the intermediate person. It has a very effective way to encrypt or dec 15+ min read An Overview of Cloud CryptographyCloud cryptography is a set of techniques used to secure data stored and processed in cloud computing environments. It provides data privacy, data integrity, and data confidentiality by using encryption and secure key management systems. Common methods used in cloud cryptography include:Symmetric en 4 min read Quantum CryptographyThe uncertainty principle of quantum physics builds the earliest foundations for quantum cryptography. With quantum computers of the future being expected to solve discrete logarithmic problems and the popularly known cryptography methods such as AES, RSA, DES, quantum cryptography becomes the fores 7 min read Image Steganography in CryptographyThe word Steganography is derived from two Greek words- 'stegos' meaning 'to cover' and 'grayfia', meaning 'writing', thus translating to 'covered writing', or 'hidden writing'. Steganography is a method of hiding secret data, by embedding it into an audio, video, image, or text file. It is one of t 8 min read DNA CryptographyCryptography is the branch of science that deals with the encoding of information to hide messages. It plays a vital role in the infrastructure of communication security. The Pioneering work had been done by Ashish Gehani et al and Amin et al after Leonard Max Adleman had shown the capability of mol 12 min read Caesar Cipher in CryptographyThe Caesar Cipher is one of the simplest and oldest methods of encrypting messages, named after Julius Caesar, who reportedly used it to protect his military communications. This technique involves shifting the letters of the alphabet by a fixed number of places. For example, with a shift of three, 11 min read One Time Password (OTP) algorithm in CryptographyAuthentication, the process of identifying and validating an individual is the rudimentary step before granting access to any protected service (such as a personal account). Authentication has been built into the cyber security standards and offers to prevent unauthorized access to safeguarded resou 7 min read Data Integrity in CryptographyMessage Authentication CodesMessage Authentication Codes are the codes which plays their role in two important functions: Authentication Detection and Falsification Detection. Where do we need these codes? Suppose User A send message to user B with message - 'abc'. A encrypts the message using Shared - Key Cryptosystem for enc 2 min read Digital Signatures and CertificatesDigital signatures and certificates are two key technologies that play an important role in ensuring the security and authenticity of online activities. They are essential for activities such as online banking, secure email communication, software distribution, and electronic document signing. By pr 11 min read Public Key InfrastructurePublic key infrastructure or PKI is the governing body behind issuing digital certificates. It helps to protect confidential data and gives unique identities to users and systems. Thus, it ensures security in communications. The public key infrastructure uses a pair of keys: the public key and the p 7 min read Like